2018-08-29 News Feed

Categories Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn

Hacker Discloses Unpatched Windows Zero-Day Vulnerability (With PoC)
https://thehackernews.com/2018/08/windows-zero-day-exploit.html
#hackerstuff #HackThePlanet

Brazilian Cryptocurrency exchange hacked; private data of over 264,000 users exposed
https://www.hackread.com/brazilian-crypto-exchange-hacked-data-users-exposed/
#hackerstuff #HackThePlanet

Hackers Publish PoC of Zero-day Vulnerability in Windows on Twitter
https://www.hackread.com/hackers-publishes-poc-of-zero-day-vulnerability-in-windows-on-twitter/
#hackerstuff #HackThePlanet

Good Introduction to CORS (Cross-Origin Resource Sharing)

Three C-Words of Web App Security: Part 1 – CORS


#hackerstuff #HackThePlanet

Fuzzing the .NET JIT Compiler
https://mattwarren.org/2018/08/28/Fuzzing-the-.NET-JIT-Compiler/
#hackerstuff #HackThePlanet

Remote Code Execution on packagist.org
https://justi.cz/security/2018/08/28/packagist-org-rce.html
#hackerstuff #HackThePlanet

Uber Bug Bounty: 1000$ for two “high severity” issue
https://medium.com/@mr.poche/uber-bug-bounty-1000-for-two-high-severity-issue-ca22e5ab52be
#hackerstuff #HackThePlanet

A walk through the AcridRain Stealer

A walk through the AcridRain Stealer


#hackerstuff #HackThePlanet

2018-08-24 News Feed

Categories Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn

T-Mobile Hacked — 2 Million Customers’ Personal Data Stolen
https://thehackernews.com/2018/08/t-mobile-hack-breach.html
#hackerstuff #HackThePlanet

NSA Leaker ‘Reality Winner’ Gets More Than 5 Years in Prison
https://thehackernews.com/2018/08/reality-winner-nsa-russia.html
#hackerstuff #HackThePlanet

Augusta University Health data breach: Private data of over 417,000 individuals exposed

Augusta University Health data breach: Private data of over 417,000 individuals exposed


#hackerstuff #HackThePlanet

DNS Rebinding Headless Browsers: Breaching the perimeter and attacking cloud environments
https://labs.mwrinfosecurity.com/blog/from-http-referer-to-aws-security-credentials/
#hackerstuff #HackThePlanet

Burp Suite 2.0 beta now available
https://portswigger.net/blog/burp-suite-2-0-beta-now-available
#hackerstuff #HackThePlanet

Crowdsourcing the hunt for software bugs is a booming business—and a risky one
https://www.technologyreview.com/s/611892/crowdsourcing-the-hunt-for-software-bugs-is-a-booming-businessand-a-risky-one/
#hackerstuff #HackThePlanet

2018-08-22 News Feed

Categories Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn

Adobe Issues Emergency Patches for Critical Flaws in Photoshop CC
https://thehackernews.com/2018/08/adobe-photoshop-update.html
#hackerstuff #HackThePlanet

Inception Framework – Provides In-memory compilation and reflective loading of C# apps for AV evasion

Inception Framework – Provides In-memory compilation and reflective loading of C# apps for AV evasion from netsec


#hackerstuff #HackThePlanet

Critical Flaws in Ghostscript Could Leave Many Systems at Risk of Hacking
https://thehackernews.com/2018/08/ghostscript-postscript-vulnerability.html
#hackerstuff #HackThePlanet

Dark Tequila Banking Malware Uncovered After 5 Years of Activity
https://thehackernews.com/2018/08/mexico-banking-malware.html
#hackerstuff #HackThePlanet

Kali Linux 2018.3 Release
https://www.kali.org/releases/kali-linux-2018-3-release/
#hackerstuff #HackThePlanet

Enumerating registered BlackHat attendees with the BCard API
https://ninja.style/post/bcard/
#hackerstuff #HackThePlanet

Using Linode to proxy Burp Suite traffic
https://ihackthings.online/using-linode-to-proxy-burp-suite-traffic/
#hackerstuff #HackThePlanet

CVE-2018-0952: Finding a Privilege Escalation Vulnerability in Windows 10, Server 2016, and Visual Studio (includes PoC)
https://www.atredis.com/blog/cve-2018-0952-privilege-escalation-vulnerability-in-windows-standard-collector-service
#hackerstuff #feedly

Introducing Pacu: The Open Source AWS Exploitation Framework
https://rhinosecuritylabs.com/aws/pacu-open-source-aws-exploitation-framework/
#hackerstuff #HackThePlanet

OpenSSH User Enumeration Vulnerability: a Close Look
OpenSSH User Enumeration Vulnerability: a Close Look
#hackerstuff #feedly

New Apache Struts RCE Flaw Lets Hackers Take Over Web Servers
https://thehackernews.com/2018/08/apache-struts-vulnerability.html
#hackerstuff #HackThePlanet

2018-08-21 News Feed

Categories Hacker Shit, News Feed Stuff, Random Musings, Security Stuff, Stuff To Learn

Fucking Homepage Words of Wisdom of the Fucking Day:
Nothing is a waste of time, if you use the experience wisely.

Stolen from @indiecom…

There’s a panel of #hackers who want to talk about #hacking at #SXSW! Vote for them by clicking this link:
https://panelpicker.sxsw.com/vote/87127

Hackers can intercept and manipulate DNS queries, researchers warn

Hackers can intercept and manipulate DNS queries, researchers warn


#hackerstuff #HackThePlanet

Reversing the Toshiba FlashAir Wi-Fi SD card – discover its CPU, it’s OS and how you can execute native code!
https://docs.google.com/presentation/d/13OJNOb2IMwp79SDrbxSLF3i7StTgWLdD7QlYpic39r8/edit
#hackerstuff #HackThePlanet #BlackHat2018

Malware “WellMess” Targeting Linux and Windows
https://blog.jpcert.or.jp/2018/07/malware-wellmes-9b78.html
#hackerstuff #HackThePlanet

Windows Process Injection: Writing the payload
Windows Process Injection: Writing the payload
#hackerstuff #HackThePlanet

Faxploit: Breaking the Unthinkable
https://blog.checkpoint.com/2018/08/12/faxploit-hp-printer-fax-exploit/
#hackerstuff #HackThePlanet